CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

While conducting vulnerability assessments, an information security analyst is calculating risk scores to prioritize remediation efforts. Which factor should be MOST heavily weighted to ensure the risk score accurately reflects the urgency of addressing the vulnerability within the organization's specific context?

  • The average time it has taken the organization to patch vulnerabilities with similar complexity in the past

  • The ratio of internal to external systems affected by the vulnerability

  • The percentage of industry peers that have mitigated the vulnerability

  • The difficulty level associated with the exploitation of the vulnerability as rated by an external security advisory

  • The number of false positives generated in vulnerability scanners for the same category of vulnerabilities

  • The exposure of high-value assets to the vulnerability and the potential business impact

This question is for objective:
Reporting and Communication
Your Score:
Reporting and Communication
Vulnerability Management
Incident Response and Management
Security Operations